Yes, we expose X.509 extensions and that includes subject alternative name, which contains dNSName values. https://cryptography.io/en/latest/x509/reference/#cryptography.x509.SubjectAlternativeName
-Paul On Mon, Aug 18, 2025 at 3:00 PM Ross Vandegrift <r...@kallisti.us> wrote: > Hello, > > Does cryptography expose openssl's strings for subject alt name types > anywhere? Not sure if this has a name, but I mean the `DNS:` in: > > $ openssl x509 -in /etc/ssl/certs/ssl-cert-snakeoil.pem -noout -text > Certificate: > Data: > ... > X509v3 extensions: > ... > X509v3 Subject Alternative Name: > DNS:host.example.com > > I'm updating some old code from PyOpenSSL and unfortunately it exposes > that string to callers in an API. > > Thanks, > Ross > > PS- please CC me, I'm not subscribed. > _______________________________________________ > Cryptography-dev mailing list -- cryptography-dev@python.org > To unsubscribe send an email to cryptography-dev-le...@python.org > https://mail.python.org/mailman3//lists/cryptography-dev.python.org > Member address: paul.l.keh...@gmail.com >
_______________________________________________ Cryptography-dev mailing list -- cryptography-dev@python.org To unsubscribe send an email to cryptography-dev-le...@python.org https://mail.python.org/mailman3//lists/cryptography-dev.python.org Member address: arch...@mail-archive.com
